Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/ZRDYVbEoB0hq8LrKlFuF48kdkww.roa
File: ZRDYVbEoB0hq8LrKlFuF48kdkww.roa (raw, json)
Hash identifier: nLIpnDuJT8de/6NIAYD99k8x37mEB/GjRM0IOJGuSw0=
Subject key identifier: 65:10:D8:55:B1:28:07:48:6A:F0:BA:CA:94:5B:85:E3:C9:1D:93:0C
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018E137B2493C99281BE3A90138D85A69E68
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/ZRDYVbEoB0hq8LrKlFuF48kdkww.roa
Signing time: Wed 06 Mar 2024 11:17:01 +0000
ROA not before: Wed 06 Mar 2024 11:17:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 2a14:c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 May 2024 15:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:13:7b:24:93:c9:92:81:be:3a:90:13:8d:85:a6:9e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Mar 6 11:17:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6510d855b12807486af0baca945b85e3c91d930c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:de:dd:e2:f9:97:69:61:63:2d:37:1e:40:3b:
8b:31:5b:33:8a:43:69:43:c9:28:5c:83:52:8c:10:
28:02:2e:83:85:fb:71:26:ef:50:d5:ef:ea:07:09:
93:fc:75:21:32:8a:88:27:37:2b:d3:3e:22:98:b0:
98:d3:da:64:b3:58:69:48:ff:58:32:21:dc:a3:ca:
b8:c5:85:94:21:64:6d:80:18:b8:30:55:11:1e:77:
84:45:13:64:f5:91:f8:d6:10:f6:34:f2:fe:b2:00:
4c:f2:b5:f2:38:97:7d:63:14:8c:cb:1f:c8:1f:28:
b8:dc:00:52:d2:e3:8a:43:43:34:d3:06:59:4d:b5:
d6:b7:f3:2f:4e:b3:c8:7b:9b:3d:22:46:7f:f0:c5:
49:91:f7:d0:bf:15:6b:45:20:62:81:f0:94:eb:65:
09:9f:e7:36:9b:b4:3d:0f:5b:84:d9:ea:2e:d4:0c:
c7:f0:3b:51:97:9a:eb:7a:c0:14:77:09:87:94:1e:
f3:74:d3:c8:b1:7d:4a:9f:06:4b:d5:98:f5:58:72:
30:1d:37:e2:d4:4f:61:47:0c:ff:67:51:17:64:c1:
d8:41:0a:22:66:4e:d2:c5:63:04:ce:c3:19:a8:cc:
31:cb:61:7b:6a:7c:d4:9e:80:8c:37:4b:6e:1d:b8:
89:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:10:D8:55:B1:28:07:48:6A:F0:BA:CA:94:5B:85:E3:C9:1D:93:0C
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/ZRDYVbEoB0hq8LrKlFuF48kdkww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c0::/29
Signature Algorithm: sha256WithRSAEncryption
88:9d:e9:97:02:bc:3f:8b:5b:6b:c2:41:c3:d2:5f:41:4b:b7:
72:18:15:3b:1f:f0:36:82:31:03:05:b3:e8:69:d8:4d:e9:61:
45:a9:3b:67:a4:15:9b:a1:36:53:2e:38:59:e0:c6:9e:32:f5:
90:0a:13:15:5e:6c:59:bc:aa:71:72:e1:8c:28:af:97:6c:8b:
30:94:86:bf:ff:a8:b8:94:a3:54:1a:d3:e4:e5:c6:37:b2:04:
5f:29:52:31:23:94:e9:65:94:29:42:68:30:b1:c8:9c:1c:79:
38:9e:c2:d8:ae:4d:7d:31:38:6f:7e:2f:53:64:40:bc:7b:cd:
36:99:04:1d:9c:91:a3:ad:e4:f3:a7:70:5a:d0:3f:fb:f4:06:
d7:4e:dd:9d:d9:43:de:89:52:1e:40:eb:9b:17:85:43:11:05:
58:d9:22:1e:7b:ee:e0:ce:e4:15:5c:2b:32:f6:9f:f0:e6:20:
d5:1d:20:51:e4:87:52:d9:5a:8c:8e:f5:72:35:30:43:d6:47:
42:91:1d:60:71:ed:ec:1b:1a:e1:67:86:b6:72:43:0a:b9:40:
f6:2f:41:5c:f2:70:8f:47:80:a0:8d:a4:98:2f:23:9a:7e:d0:
6f:3f:b9:35:36:57:8a:3a:02:61:00:fe:c2:4d:14:0d:85:df:
b4:69:8e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:38 2024 by rpki-client on console-fra.rpki-client.org